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(57) Abstract 

A data object, such as a document, is combined or associated with signature or 
authentication data, such as a time^tamp or signature. Both die data object and the suture 
data are encrypted. Finally, a distinct data object is generated (digested or hashed) from the 
encrypted dam object and signature data, the distinct data object has [^Ff^^JJ^^^ 
by the data object and the signature data. The data object may be hashed or digested prior to 
being combined with the signature data. 
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^•^ssssr^ DIG,TAL 

TECHNICAL FIELD OF THE INVENTION 

The present invention relates in general to providing authentication of digital data, 
s„ch as document or other dam files or object, More particularly, the present invention 
relates to methods of securely appending or otherwise incorporating a digital signature 
or indicia of authenticity into a data object. 



BACKGROUND OF THE INVENTION AND BACKGROUND ART 

There have been several prior attempts to digitally "sign," "notarize," or otherwise 
authenticate a digital data object such as a tex, document. Generally speaking, one 
drawback* the stomge of, for instance, digital document files, is that it can be difficult 
to establish whether me version retrieved or transmitted is the identical document 
originally stored or created, A "digital signature" or "notary" is a common nomenclature 
for an attempt to provide indicia of authenticity of the digital data. 

One such method is found in U.S. Paten. Number 5,022,080, June 4, 1991, to 
Durst et al, which discloses a method of digitally notarizing a document comprising the 
steps of hashing the document, transmitting the digest (or result of the hash) to a trusted 
third party, where the digest is combined with a time-stamp, and men encrypting me 
combination to produce a "digital notarized" document- Al, that is required to 
authenticate tire document is the key to the encryption technique. Thus, simply by 
"breaking me code" the authenticity indicia or the underlying dam object can be altered 
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or tampered with. 

Other solutions complicate this basic scheme to render it more difficult to break 
the code successfully. For instance, U.S. Patent Number 5,373,561, December 13, 1994 
to Haber et al., periodically re-encrypts the signature data to take advantage of ever- 
increasing computational power and advances in encryption, which also render the 
authentic document more susceptible to alteration, decryption, or tampering as time 
passes. However, if the user neglects to "update" the encryption, the advantage is lost. 

A need exists, therefore, for a method of digitally authenticating a data object that 
is not susceptible to future tampering, yet is sufficiently simple as to be implemented in 
a practical and efficient manner. 
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DISCLOSURE OF THE INVENTION 

It is a genera! objec, of the present invention to provide a method of providing a 
data object *at can ve verified or authenticated reliably, with minima, risk of tampering. 

This and other objects of Ore present invention are achieved by associating or 
combining a data objec, such as a document file, ^ signature or authentication data, 
such as a time-stamp or signature. Both the data object and the signature data are 
enc^ted. Finally, a distinct data objec, is generated or digested fiom the combination 
- of encrypteddata object and signature data, the distinct data object has characterist.cs 
determined by the data object and the signature data. 

According «o the preferred embodiment of the present invention, the generation 
of the distinct data objec, is achieved using a hashing algorithm, such as SHA-1. 

According to «he preferred embodiment of the present invention, the signature or 
aumentication da* is provided by a trusted third party. The data objec, transmitted to the 
tod party may be a diges, or hash of the data object to preserve the confidentiality of me 
data object. 

According to ,he preferred embodiment of me presen, invention, the encryption 
step is achieved by a symmetric encryption algorimm. 

According to the preferred embodiment of the presen, invention, me authenticity 
of the original da«a objec is confirmed by reproducing me distinct data object by 
identically encypting a da,a object identical ,o me original, generating another distinct 
data objec, and comparing me second and firs, distinc, da«a objects for identity. 
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BRIEF DESCRIPTION OF THE DRAWINGS 

Figure 1 is a high-level flow chart depicting the steps of the method according to 
the preferred embodiment of the present invention, and more particularly the steps of 
proving a data object with authentication or signature data. 

Figure 2 is a block diagram schematically depicting a portion of the method of 
Figure 1 according to the preferred embodiment of the present invention. 

Figure 3 is a high-level flow chart illustrating the steps of the method according 
to the preferred embodiment of the present invention, and more particularly of the steps 
of authenticating a data object provided with authentication data. 

Figure 4 is a block diagram schematically depicting a portion of the method of 
Figure 3 according to the preferred embodiment of the present invention. 
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MODE(S) FOR CARRYING OUT THE INVENTION 

Referring now to the Figures, and specifically to Figure 1, a high-level flowchart 
depicts the basic steps of a portion of the method according to the present invention. 
First, at block 11, a first data object or item is provided by a user or customer of the 
method. The data object or item could be a document, drawing, image file, or any item 
or segment of data that the user desires to provide with the ability to be authenticated or 

verified in the future. 

At block 13, the data object is combined or associated with signature or 
authentication data. The signature or authentication may include the time of creation of 
the data object, the name of the author of the object, predetermined characters indicating 
the origin of the object, or virtually any other data the user desires to serve as evidence 
of authenticity of the underlying data object. According to the preferred embodiment of 
the present invention, the authentication data is a "time stamp" that comprises, for 
instance, the time and date from the "Atomic Clock" maintained by the United States 
Naval Observatory (e.g., 22: 13.02; 4 April 1998). The signature or authentication data 
is appended, concatenated, or otherwise conventionally combined or associated with the 
data object. As discussed in greater detail with reference to Figure 2, the time stamp or 
other signature or authentication data is provided by a trusted third party, perhaps the 
vendor of the method, who also keeps meticulous records of the method used to combine 
or associate the data object with signature or authentication data. 

Next, at block 15, the combination of the data object and signature or 
authentication data is encrypted using conventional symmetric secret-key, asymmetric 
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public-key techniques or other combining techniques which use a key known only to the 
trusted third party. The encryption technique could be as simple as appending or 
concatenating a selected, random text or character string to the data object. For maximum 
security, it is preferable that the trusted third-party employ secret-key techniques and 
maintain a record of the encryption technique along with any secret-keys, for future use 
in authentication of the data object. The preferred encryption method or algorithm is 
RC5. 

Finally, at block 17, the encrypted data object is digested or hashed using a hash 
routine to generate a distinct data object. A hash routine generates a data string that is 
characteristic of the underlying data object that is subjected to the hash routine. The 
preferred hashing algorithm is SHA-1 . There are several hashing routines or algorithms, 
such as SHA-1, that are suitable for use in the method according to the present invention. 
All of these hashing routines or algorithms share the following characteristics: 

the underlying data object cannot be reproduced from the hashed data 
string (it is a one-way or irreversible process); 
the routine produces a data string of fixed length; and 
the routine will not yield the same data string for two different data objects. 
Hashing is sometimes referred to as a method of encryption, but this is inaccurate: the 
very essence of encryption is that it can be decrypted or the process reversed. Hashing, 
by its very nature, is not reversible. According to the preferred embodiment of the 
present invention, the hashing or digesting step may comprise application of a single 
hashing algorithm or routine to the encrypted data object and signature data. 
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native,, me hashing step may comprise — — * - ^ " 

different hashing algorithms. 

^ result of the hashing step is a distinct data object tha, has characteristics of 

^-*.^--^^ h ---* ,h, •'"*' a,,,M^,, ■ 

obj ec, ,o a recipient party to permit the recipient party to later confirm the authenticity 
of .the origma, data object and/or the con.bina.ion of the ^ oa,a objec, ^ *e signal o, 
authentication data. 

Figure 2 is a block diagram depicting elements and relationships between entities 
perfoHning^stepsof^^emodaccotdingtotheptesentinvention. According to the 
purred embodiment of me present invention, me encryption and hashing steps are 
performed on the user's computer 1, which may be a persona, computer, a c.ientfserver 
workstation, terminal for a mainframe or minicomputer or me like. The signature or 
authentication data is provided by a trusted third party », who also provides the 
encryption and hashing aigorithms and keeps a record of me encryption or comb.mng 
techniques and any secret keys for use in future authentication. Actively, me 
encryption andhashmga.goritl-r.s are resident on and maintained by user's system ,9. 

According to one embodiment of the invention, the original data object is hashed 
^ men sen, to the trusted third party n to preserve the confidentiality of the original 
da ,a object, in mis embodiment, me trusted third party performs me encryption and 
Has.nngordigestingstepsandretumsmeresu.tingdistinctdati. object and aumentication 
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data to user 19 to associate with or combine with the original data object. 

Communication between user 19 and trusted third party 21 is accomplished in a 
number of ways: through modem line, Tl line, frame relay link, or cable modem, or http 
protocol (each with appropriate security). Trusted third party 21 maintains records of any 
encryption keys, the encryption technique and hashing algorithm(s) for future use by the 
party that later performs authentication of the document. 

Figure 3 is a high-level flow chart depicting the steps of the authentication portion 
of the method according to the present invention. To authenticate the data object, an 
original copy, block 31, of the data object, identical to the first, is combined with 
signature or authentication data, at block 33. The original copy of the data object and 
signature or authentication data can be provided by the originator, or can be kept by the 
trusted third party along with the encryption and/or hashing algorithms. After the copy 
of the original data object is combined with the authentication or signature data, the 
combinations is encrypted in an identical fashion to the original, at block 35. At block 
37, the resulting encrypted data object is then hashed or digested identically to the first, 
and the resulting distinct data object compared with the original data object (the result of 
block 17 in Figure 1) and the two are compared for identity. If the two are identical, the 
underlying data object (or the copy) is thus verified or authenticated. If not identical, the 
data object or copy is not authenticated and cannot be trusted (i.e., the copy or document 
purporting to be original has been altered and is not identical to the first or the 
authentication data has been altered). 

Figure 4 is a block diagram depicting elements and relationships between entities 
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perforce steps of the authentication portion of the m«hod according to the present 
invention. According to the P-ferred embodiment of the present invention, the 
aumentication steps are performed by a masted party, perhaps the vendor of the method 
as the recipient party 25 using information provided by the trusted third party, the 
originator or user, or a combination of the two. The distinct data objects are input to a 
comparator or a computer algorithm operable to compare data for identity. The output 
of the comparator verifies the authenticity (or lack thereof). 

According to the preferred embodiment of the present invention, the method is 
performed using software resident on the document or data object originator's computer. 
The enctyption and digesting occurs on the trusted third party's computer with the input 
and results being communicated to and from the tmsted third party as described above. 
The recipient of the "authenticated" data object can request verification through the 
trusted third party, depending upon which of the parfes maintains the requisite 
en^yption technique, hashing algorithm, combination method, and any encryption keys. 

The method according to the present invention provides an improved method of 
digitally signing or otherwise authenticating digital data objects. Because the hashing or 
digesting step is one-way or irreversib.e, the encrypted portion of the "signature" is not 
susceptible to unauthorized decryption, even by marked advances in compmational 
power. Because of mis advantage, me trusted third party or vendor must keep scrupulous 
records of the encryption or combining techniques, hashing medrods and encryption keys 
employed in providing the signature or authentication data. 

The invention has been described with reference to preferred embodiments thereof . 
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It is thus not limited, but is susceptible to variation and modification without departing 
from the scope and spirit of the invention, which is defined by the claims, which follow. 
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CLAIMS 

1. A method of securely associating signature data with other data, the method 

comprising the steps of: 

associating a data object with signature data; 

encrypting both the data object and the signature data; and 

generating a distinct data object from the encrypted data object and signature data, 

the distinct data object having characteristics determined by the data object and the 

signature data: 

2. The method according to claim 1 further comprising the step of: 

delivering the distinct data object and signature data to a recipient party, 

3. The method according to claim 2, further comprising the step of: 

validating the distinct data object and signature data combination by: 

associating a second data object, identical to the first, with the signature 

data; 

encrypting the second data object and the signature data using an 
encryption method identical to that employed in encrypting the first data object 

and the signature data; 

generating a second distinct data object from the encrypted second data 
object and the signature data using an method identical to that employed in 
generating the distinct data object; and 

comparing the distinct and second distinct data objects for identity. 

4. The method according to claim 1, wherein the signature data is provided by a trusted 
party. 

5. The method according to claim 1, wherein the encrypting step is performed using a 
symmetric data encryption technique. 
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6. The method according to claim 1, wherein the step of generating the distinct data 
object is performed using a hash routine. 



7. A method of providing a time-stamp for a data object comprising the steps of: 

generating a distinct value for the data object; 

associating signature data with the distinct value to produce a signed data object; 
encrypting the signed data object; and 

generating a second distinct value from the encrypted signed data object, the 
second distinct data object having characteristics of the encrypted signed data object. 

8. The method according to claim 7 further comprising the step of: 

delivering the second distinct data object and signature data to a recipient party. 

9. The method according to claim 8, further comprising the step of: 

validating the second distinct data object and signature data combination by: 

generating a third distinct value, identical to the distinct value; 

associating a second signature data, identical to the first, with the third 
distinct value to produce a second signed data object; and 

encrypting the second signed data object using an encryption method 
identical to that employed in encrypting the first signed data object; 

generating a fourth distinct value from the encrypted second signed data 
object using method identical to that employed in generating the second distinct 
value; and 

comparing the fourth distinct value and second distinct value for identity. 

10. The method according to claim 7, wherein the signature data is provided by a trusted 
party. 

1 1 The method according to claim 7, wherein the encrypting step is performed using a 
symmetric data encryption technique. 
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12. The method according to claim 7, wherein the step of generating the distinct value 
is performed using a hash routine. 

13. A method of providing a time-stamp for a data object comprising the steps of: 

generating a distinct value for the data object by performing a hash routine on the 
data object; 

associating a time-stamp with the distinct value to produce a time-stamped data 

object; 

encrypting the time-stamped data object; and 

generating a second distinct value from the encrypted time-stamped data object by 

performing a hash routine on the encrypted time-stamped data object. 

X 

14. The method according to claim 13 further comprising the step of: 

delivering the second distinct data object and time-stamp to a recipient party. 

15. The method according to claim 13, further comprising the step of: 

validating the second distinct data object and time-stamp combination by: 
generating a third distinct value, identical to the distinct value; 
associating a identical time-stamp with the third distinct value to produce 

a second time-stamped data object 

encrypting the second time-stamped data object using the identical 

encryption method; 

generating a forth distinct value from the encrypted second time-stamped 

data object; and 

comparing the fourth distinct value and second distinct value for identity. 

16. The method according to claim 13, wherein the time stamp is provided by a trusted 
party. 

17. The method according to claim 13, wherein the encrypting step is performed using 
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a symmetric data encryption technique. 
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<54) Tide: METHOD OF AUTHENTICATING OR "DIGITALLY SIGNING" DIGITAL DATA OBJECTS 
(57) Abstract 



A data object, such as a document, is combined or associated with signature or 
authentication data, such as a time-stamp or signature. Both the data object and the signature 
data are encrypted. Finally, a distinct data object is generated (digested or hashed) from the 
encrypted data object and signature data, the distinct data object has characteristics determined 
by the data object and the signature data. The data object may be hashed or digested prior to 
being combined with the signature data. 
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